Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5454 matches found

Tenable Nessus
Tenable Nessusadded 2026/03/20 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-3549

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing...

9.8CVSS6AI score0.00487EPSS
Exploits0References3
Snyk
Snykadded 2026/03/19 10:45 p.m.2 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to an integer underflow in the ECH extension parsing logic when calculating a buffer length, leading to writing beyond the bounds of an allocated buffer. An attacker can cause memory corruption or...

9.8CVSS6.4AI score0.00487EPSS
Exploits0References2
Snyk
Snykadded 2026/03/19 10:45 p.m.2 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write in the wcHpkeLabeledExtract function when processing an oversized ECH configuration. An attacker can cause a client crash or achieve remote code execution by sending a maliciously crafted ECH config from a TLS server...

9.8CVSS6.4AI score0.00444EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/19 9:30 p.m.10 views

EUVD-2026-13231

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

6.9CVSS6.2AI score0.00444EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/19 9:30 p.m.9 views

EUVD-2026-13168

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

8.3CVSS6AI score0.00487EPSS
Exploits0References2
NVD
NVDadded 2026/03/19 9:17 p.m.6 views

CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS0.00444EPSS
Exploits0References1
OSV
OSVadded 2026/03/19 9:17 p.m.2 views

DEBIAN-CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS6.1AI score0.00444EPSS
Exploits0References1
NVD
NVDadded 2026/03/19 9:17 p.m.13 views

CVE-2026-3549

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

9.8CVSS0.00487EPSS
Exploits0References1
OSV
OSVadded 2026/03/19 9:17 p.m.4 views

DEBIAN-CVE-2026-3549

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

9.8CVSS5.6AI score0.00487EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/03/19 9:17 p.m.2 views

CVE-2026-3549

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

9.8CVSS6AI score0.00487EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/03/19 9:17 p.m.2 views

CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS6.2AI score0.00444EPSS
Exploits0References2
OSV
OSVadded 2026/03/19 9:17 p.m.2 views

UBUNTU-CVE-2026-3549

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

9.8CVSS6AI score0.00487EPSS
Exploits0References3
OSV
OSVadded 2026/03/19 9:17 p.m.1 views

UBUNTU-CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS6.3AI score0.00444EPSS
Exploits0References3
CVE
CVEadded 2026/03/19 8:29 p.m.12 views

CVE-2026-3849

CVE-2026-3849 describes a stack buffer overflow in wolfSSL 5.8.4’s ECH (Encrypted Client Hello) support, specifically in wc_HpkeLabeledExtract triggered by an oversized ECH config. The issue could allow remote execution or a client crash when a malicious TLS server sends a crafted ECH config. ECH...

9.8CVSS6.2AI score0.00444EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/19 8:29 p.m.1 views

CVE-2026-3849 Buffer Overflow in HPKE via Oversized ECH Config

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

6.9CVSS6.2AI score0.00444EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/03/19 8:29 p.m.4 views

CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS6.1AI score0.00444EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2026/03/19 8:29 p.m.2 views

CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS6.2AI score0.00444EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/03/19 8:9 p.m.4 views

CVE-2026-3549 ECH parsing heap buffer overflow

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

8.3CVSS6AI score0.00487EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/03/19 8:9 p.m.19 views

CVE-2026-3549 ECH parsing heap buffer overflow

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

8.3CVSS0.00487EPSS
Exploits0References1
CVE
CVEadded 2026/03/19 8:9 p.m.11 views

CVE-2026-3549

CVE-2026-3549 describes a heap overflow in TLS 1.3 ECH parsing due to an integer underflow while calculating a buffer length in the ECH extension parsing logic. The issue can cause writes beyond allocated buffers. Public sources consistently reference wolfSSL and note that ECH is off by default; ...

9.8CVSS6AI score0.00487EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder